This content has been machine translated dynamically.
Dieser Inhalt ist eine maschinelle Übersetzung, die dynamisch erstellt wurde. (Haftungsausschluss)
Cet article a été traduit automatiquement de manière dynamique. (Clause de non responsabilité)
Este artículo lo ha traducido una máquina de forma dinámica. (Aviso legal)
此内容已经过机器动态翻译。 放弃
このコンテンツは動的に機械翻訳されています。免責事項
이 콘텐츠는 동적으로 기계 번역되었습니다. 책임 부인
Este texto foi traduzido automaticamente. (Aviso legal)
Questo contenuto è stato tradotto dinamicamente con traduzione automatica.(Esclusione di responsabilità))
This article has been machine translated.
Dieser Artikel wurde maschinell übersetzt. (Haftungsausschluss)
Ce article a été traduit automatiquement. (Clause de non responsabilité)
Este artículo ha sido traducido automáticamente. (Aviso legal)
この記事は機械翻訳されています.免責事項
이 기사는 기계 번역되었습니다.책임 부인
Este artigo foi traduzido automaticamente.(Aviso legal)
这篇文章已经过机器翻译.放弃
Questo articolo è stato tradotto automaticamente.(Esclusione di responsabilità))
Translation failed!
How to renew SSL Certificate on a ShareFile Storage Zone Server
This article contains the steps for how to renew the SSL Certificate for a Customer Managed Storage Zone Controller Server.
How to renew SSL Certificate on a ShareFile Storage Zone Server
- Create a CSR in IIS.
- Have the Certificate Provider sign the CSR.
- Complete the Certificate Signing Request in IIS.
- Bind the new certificate to the IIS Server.
- Reset IIS services.
1. Create a CSR in IIS
Complete the following steps to generate a certificate signing request (CSR) for Microsoft IIS.
- Click Start > Administrative Tools > Internet Information Services (IIS) Manager.
- In the IIS Manager, select your server name.
- In the central pane, double-click the Server Certificates option located in the IIS section.
- To begin the process of requesting a new certificate, from the Actions pane, select Create Certificate Request option.
- The first screen of the wizard asks for details regarding the new site. All the fields must be entered. To fill in this form, consider the following:
- Country/region(C): Use the two-letter code without punctuation for country, for example: US or CA.
- State/ province (S): Spell out the state completely; do not abbreviate the state or province name, for example: California.
- City/locality (L): The Locality field is the city or town name, for example: Berkeley.
- Organization (O): If your company or department has an &, @, or any other symbol using the shift key type in its name, you must spell out the symbol or omit it to enroll, for example: XY & Z Corporation would be XYZ Corporation or XY and Z Corporation.
- Organizational unit (OU): This field is the name of the department or organization unit making the request.
-
Common name (CN): The Common name is the Host + Domain Name. It looks like “www. company. com”, or “.company. com” for a wildcard certificate. The common name here must match the Base URL of your Storage Zone server group. For example, if the Base URL is http(s):// storagezone. yourcompany. com, then the common name here should be storagezone. yourcompany. com. If you are planning to create a wildcard certificate, the common name can be*. yourcompany. com.
Note:
SSL certificates can only be used on web servers using the Common Name specified during enrollment. For example, a certificate for the domain “domain. com” will receive a warning if accessing a site named “www. domain. com” or “secure. domain. com”, because “www. domain .com”and “secure .domain. com” are different from “domain .com”.
- Click Next to continue.
- In the Cryptographic Service Provider Properties screen, retain the default option Microsoft RSA SChannel Cryptography Provider and select a key Bit length of 2048.
- Click Next to continue.
- Type a file name to which you want to save the certificate request. Note: You will need the contents of this file in the next step. Therefore, ensure you know where to find it. To change the location of where you want to save the CSR, select the box with the 3 periods next to the file name.
2. Have the Credential Provider Sign the CSR
You need to do it from their website or contact your credential provider for this step.
3. Complete the Certificate Signing Request in IIS
- On the server where you created the CSR, save the SSL certificate .cer/.pem file.
- In the Windows start menu, type Internet Information Services (IIS) Manager and open it.
- In Internet Information Services (IIS) Manager, in the Connections menu tree (left pane), locate and click the server name.
- On the server name Home page (center pane), in the IIS section, double-click Server Certificates.
- On the Server Certificates page (center pane), in the Actions menu (right pane), click the Complete Certificate Request… link.
- In the Complete Certificate Request wizard, on the Specify Certificate Authority Response page, you need to import the .cer/.pem file and click finish.
4. Bind the new certificate to the IIS Server
- In the IIS Manager console, click Default Web Site and then click Bindings.
- Edit the binding for port 443. On the SSL certificate drop down, select the new SSL Cert that you just imported and click OK.
5. Restart IIS
Under Manage Website, click on Restart.
This Preview product documentation is Citrix Confidential.
You agree to hold this documentation confidential pursuant to the terms of your Citrix Beta/Tech Preview Agreement.
The development, release and timing of any features or functionality described in the Preview documentation remains at our sole discretion and are subject to change without notice or consultation.
The documentation is for informational purposes only and is not a commitment, promise or legal obligation to deliver any material, code or functionality and should not be relied upon in making Citrix product purchase decisions.
If you do not agree, select I DO NOT AGREE to exit.